QwikSec

Security Database

CVE

CWE

Training

CVE-2023-1206

Published: Jun 30, 2023

Modified: Oct 15, 2024

PUBLISHED

Description

A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that accepts IPV6 connections up to 95%.

Vendor	Product	Versions
n/a	Kernel	affected `kernel 6.5-rc1`

Weaknesses (CWE)

References

https://bugzilla.redhat.com/show_bug.cgi?id=2175903

vendor-advisory

vendor-advisory

https://security.netapp.com/advisory/ntap-20230929-0006/

[debian-lts-announce] 20231019 [SECURITY] [DLA 3623-1] linux-5.10 security update

mailing-list

[debian-lts-announce] 20240111 [SECURITY] [DLA 3710-1] linux security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.